Image: Shutterstock/lenetstan
Advertisement
This sort of hiccup falls into the camp of 'zero-day' vulnerabilities, which are problems with code that are not known even to the developers of the software. Entire companies are dedicated to ratting them out, after which they either inform the people responsible for the weakness, or sell details of how to exploit it to government agencies or others who have enough cash.But despite probably being able to cash in on this most recent discovery, the researchers are instead collaborating with Tails and I2P to sort out the problem, and will only publish a more detailed analysis of the exploit once it's been fixed.“We publicized the fact that we’ve discovered these issues for a very simple reason: no user should put full trust into any particular security solution. By bringing to light the fact that we have found verifiable flaws in such a widely trusted piece of code, we hope to remind the Tails userbase that no software is infallible,” Exodus wrote.
Advertisement